Any 3.50 system testers?

Discussion in 'PS3 - Hacking & Homebrew' started by Zetta_x, Oct 16, 2010.

Oct 16, 2010

Any 3.50 system testers? by Zetta_x at 11:03 AM (3,396 Views / 0 Likes) 24 replies

  1. Zetta_x
    OP

    Member Zetta_x The Insane Statistician

    Joined:
    Mar 4, 2010
    Messages:
    1,844
    Country:
    United States
    I came across this post today and was wondering if anyone can test this. Requires Move:

    Edit: I'm not liable for any damages that occur to your system if you try it.

     


  2. comfaithgenesisr

    Member comfaithgenesisr GBAtemp Regular

    Joined:
    Nov 11, 2009
    Messages:
    229
    Location:
    Internet
    Country:
    United Kingdom
    where did you find the post ?
     
  3. ComplicatioN

    Member ComplicatioN Broken Barriers

    Joined:
    Aug 23, 2008
    Messages:
    844
    Location:
    Thousand Sunny
    Country:
    Australia
    Lol then...
    "Sony has placed a mandatory update for the game 'Sports Champion'.
    Though if this is true then it is great for those trying to get back to 3.41.
     
  4. dilav

    Member dilav GBAtemp Maniac

    Joined:
    Nov 22, 2006
    Messages:
    1,225
    Country:
    United States
    lol, if this is true i hope it never gets patched lmao.
     
  5. doyama

    Member doyama GBAtemp Maniac

    Joined:
    Nov 30, 2006
    Messages:
    1,288
    Country:
    United States
    This is entirely implausible. The game itself is unable to update the PS3, it must rely on the system OS to do this because all games run under the hypervisor and do not have low level access. If this was even remotely possible you could do it right now without a Move game, just throw a 3.41 firmware on a USB stick and do the system update.

    Basically the only way this would be possible was if the game was somehow coded with a Hypervisor vulnerability that bypassed the firmware checks on a security ring lower than it has access to. Something like that would be the equivalent of somehow making a nuclear bomb by mixing together uranium and explosives together in a random way.

    Whoever posted this is obviously trolling (not Zetta I mean the person he is quoting)
     
  6. Zetta_x
    OP

    Member Zetta_x The Insane Statistician

    Joined:
    Mar 4, 2010
    Messages:
    1,844
    Country:
    United States
    Well, A few weeks ago it was speculated true that it is possible to downgrade the firmware on a Jailbroken console by running a destructive file, possible so destructive that it broke the firmware in which any firmware could be placed on the system. No one was willing to try it.

    As for the post, it was on some comment to a newspost to one of the many PS3 sites I was lurking on and can't find it at the moment.
     
  7. dilav

    Member dilav GBAtemp Maniac

    Joined:
    Nov 22, 2006
    Messages:
    1,225
    Country:
    United States
    I've seen something about that here on the fourms. Running the fake PSP emulator on 3.41 bricks it in a way that you could downgrade via a game disc that has the update file.


    Edit:vvv Kinda forgot the details but that sounds about right.

    Edit: Heres the gbatemp topic:
    http://gbatemp.net/index.php?showtopic=257271
     
  8. Zetta_x
    OP

    Member Zetta_x The Insane Statistician

    Joined:
    Mar 4, 2010
    Messages:
    1,844
    Country:
    United States
    Yeah, someone reported it was possible and the PSP brick program uses a .self file that was titled something like Manufacturer_reset_...

    So it probably destroyed the firmware on the PS3 (which is why it bricked) in which any firmware could be updated (since your technically not downgrading when no capable firmware is present)
     
  9. Kayot

    Member Kayot GBAtemp Fan

    Joined:
    Jan 24, 2010
    Messages:
    341
    Country:
    United States
    this is fake, the post is here -> http://www.ps3-hacks.com/2010/10/15/kakaro...test/#more-3607

     
  10. Rydian

    Member Rydian Resident Furvert™

    Joined:
    Feb 4, 2010
    Messages:
    27,883
    Location:
    Cave Entrance, Watching Cyan Write Letters
    Country:
    United States
    all we need for what i posted originally is some method of corrupting the current firmware so that only recovery mode works. something badly programmed...

    the ps3 needs more shovelware?
     
  11. doyama

    Member doyama GBAtemp Maniac

    Joined:
    Nov 30, 2006
    Messages:
    1,288
    Country:
    United States
    i would just like to point out my awesome powers of precognition. i accurately predicted the original poster was just trolling. i'm doing better than sylvia brown [​IMG]
     
  12. doyama

    Member doyama GBAtemp Maniac

    Joined:
    Nov 30, 2006
    Messages:
    1,288
    Country:
    United States
    we'd need something like the pandora battery to do that though. it's possible, but without a leak of the actual hardware they use to do it, we probably won't see it.

    it's not hard to brick the ps3, it's the recovery part no one has figured out yet.
     
  13. Zetta_x
    OP

    Member Zetta_x The Insane Statistician

    Joined:
    Mar 4, 2010
    Messages:
    1,844
    Country:
    United States
    nice catch doyama, it's too bad the average person is a welfare leeching magot, we need more people who can logically sense contradictions [​IMG].

    thanks for clearing it up =)
     
  14. DJPlace

    Member DJPlace P!ssed OFF Pyscho of GBA!!

    Joined:
    Apr 16, 2008
    Messages:
    4,486
    Country:
    United States
    that guy whoever came up with it must a been a dick
     
  15. tk_saturn

    Member tk_saturn GBAtemp Psycho!

    Joined:
    Jan 26, 2010
    Messages:
    3,327
    Country:
    United Kingdom
    you will never be able to downgrade firmware, the ps3 has e-fuses in that ibm core... and we know what e-fuses are used for.

    http://en.wikipedia.org/wiki/efuse

    once an e-fuse is blown, it's permanent unless you switch the cpu.

    i'm willing to bet when designing the 3ds, nintendo noticed how sucessfull those efuses were proving...
     
  16. doyama

    Member doyama GBAtemp Maniac

    Joined:
    Nov 30, 2006
    Messages:
    1,288
    Country:
    United States
    The thing I've not yet seen is why the DSi Mode on the DSi hasn't been cracked yet. Certainly the DS and the Wii security models were piles of steaming poo. But has the DSi remained uncracked because it actually has as decent security model? Nintendo's track record there is very bad so I find it hard to believe they suddenly smartened up and implemented something useful.
     
  17. Rydian

    Member Rydian Resident Furvert™

    Joined:
    Feb 4, 2010
    Messages:
    27,883
    Location:
    Cave Entrance, Watching Cyan Write Letters
    Country:
    United States
    I present to you: "DSi Encryption Put In Perspective", also known as "I Love Crushing People's Dreams".

    The DSi uses 128-bit encryption (IIRC).
    How do you break it? You find the correct encryption key.

    How many encryption keys are there? 2 (binary, a bit) to the 128th power (number of bits), divided by 8 (8 bits in a byte).
    That's so many that the calculator that comes with windows (at least XP) can't even display the number without reverting to scientific notation.

    128-bits is...
    340,282,366,920,938,463,463,374,607,431,768,211,456 possible values in binary.
    However, Since there's 8 bits in a byte, you divide 128 by 8 and get 16. That's 16 bytes, 16 characters.
    That's 18,446,744,073,709,552,000 possible values, ranging from 0x0000000000000000 to 0xFFFFFFFFFFFFFFFF. Eighteen quintillion possible keys.
    The actual number is a bit less less since a key will be a certain number of digits and be designed to not have repeating segments, but this puts it in perspective.

    Let's say that you have a computer program which can try 50,000 unique keys a second.
    That's 3,000,000 keys a minute.
    180,000,000 keys in an hour.
    4,320,000,000 keys a day.
    1,576,800,000,000 keys in one year.

    It would take 11,698,848 years to try all the keys at that speed.

    So wait, how do they break other systems? If you can get a direct copy of the encrypted data and compare it to a copy of the unencrypted data (as well as view the data as it's transmitted around the DSi's internals), that goes a long way towards figuring out the key without having to try all possible combinations. You'll be able to find the key without all the guessing! The problem is you'd need to take a DSi apart and fuck with it's insides while it's on to try to get a copy of the data while it's unencrypted (since the DSi will unencrypt what it needs on the fly in order to use it), and usually when you're done with that the DSi's pretty broken and in no shape to game, or even to be experimented on a second time...
    [​IMG]
    http://www.flickr.com/photos/micahdowty/se...57621023570420/

    This process can be hampered by the internal design of the system, so you may need to take apart many systems before you even figure out how to read some of the data, let alone get a full copy of it, and last I checked DSi's don't cost $5...
     
  18. Zetta_x
    OP

    Member Zetta_x The Insane Statistician

    Joined:
    Mar 4, 2010
    Messages:
    1,844
    Country:
    United States
    Hackers need to compromise every computer on the net and use their resources to run brute force test [​IMG]
     
  19. Joe88

    Member Joe88 [λ]

    Joined:
    Jan 6, 2008
    Messages:
    11,192
    Location:
    NYC
    Country:
    United States
    the PS3 I think uses a 512bit encryption
     
  20. doyama

    Member doyama GBAtemp Maniac

    Joined:
    Nov 30, 2006
    Messages:
    1,288
    Country:
    United States
    Well brute forcing the encryption is never the way to go obviously. Unless you have a quantum computer from the future [​IMG]

    Hacks have never been about brute forcing the key, but to find flaws in the security implementation. Buffer overflows on images on the PSP. Exploiting the weak DVD drive on the X360. Going into dev mode on the PS3.

    I've never seen a decent write up of how the overall security model of the DSi actually works. I had hoped I'd see one after Team Twiizers posted their POC hack in 2009. Nothing seemed to come of that though.
     

Share This Page